Fix Unable to Verify Update Package signature. IDRAC ISSUE

I encountered the Unable to Verify Update Package signature issue while trying to upgrade the Dell PowerEdge R430 Server IDRAC. We can encounter this error when attempting to update an iDRAC when jumping up too many versions.

Start Time:Not Applicable
Expiration Time:Not Applicable
Message:RED007: Unable to verify Update Package signature.

Summary: iDRAC update fails with the following error RED007: Unable to verify Update Package signature. Due to a change to the digital signature, Workaround must be used to complete the update. This is most probably due to the existing iDRAC setup lacking the required information about newer security (certificate) information for the much newer update installer.

How to Fix Unable to Verify Update Package signature – Technig

A confirmed fix is to apply earlier updates to/for the iDRAC in a more step-wise manner: For instance, if the card is listed as version 2.2x.(etc), apply the update to 2.40.40.40 then 2.5x, etc. up to the latest update. It is often possible to skip one version, but as always, proceed with due care & caution.

Dell IDRAC Older versions

VERSIONRELEASE DATEIMPORTANCE
2.80.80.80, A0011 May 2021Recommended
2.75.100.75, A0020 Jan. 2021Recommended
2.75.75.75, A0026 Jun. 2020Recommended
2.70.70.70, A0031 Oct. 2019Recommended
2.63.60.61, A0003 May 2019Urgent
2.62.60.60, A0011 Feb. 2019Recommended
2.61.60.60, A0005 Dec. 2018Recommended
2.60.60.60, A0025 Jun. 2018Recommended
2.52.52.52, A0002 Mar. 2018Recommended
2.50.50.50, A0026 Sep. 2017Recommended
2.41.40.40, A0014 Nov. 2016Optional
2.40.40.40, A0012 Oct. 2016Recommended
2.30.30.30, A0010 Feb. 2016Recommended
2.21.21.21, A0009 Nov. 2015Urgent
2.20.20.20, A0024 Aug. 2015Recommended
2.15.10.10, A0025 Jun. 2015Recommended
2.10.10.10, A0017 Mar. 2015Recommended

How to Fix Unable to Verify Update Package signature

Resolution: The iDRAC7 and iDRAC8 Dell Update Packages (DUP) no longer carry SHA-1 digital signatures. This DUP change was introduced in iDRAC firmware 2.61.60.60 and later. iDRAC7 and iDRAC8 version 2.40.40.40 or later added support to verify the SHA256 signatures. iDRAC must be running one of the following versions to support SHA-256 DUP payloads through Out of Band updates.

In this case, I’m going to upgrade from the 2.21.21.21 version to the final 2.80.80.80, A00 version in a step-wise manner.

  1. Go to the Dell Product Support page and search IDRAC update by your Service Tag of your Server and download the IDRAC and Lifecycle controller update.
  2. Login to your IDRAC through the web interface using the IDRAC IP address.
  3. Expand IDRAC Settings.
  4. Click Update and Rollback.
  5. On the Update table, select the download IDRAC and Lifecycle Controller update then click Upload.
  6. Once the package is successfully uploaded, tick the checkbox of the uploaded file and click Install.
    • Note: I’ve updated the IDRAC and Lifecycle Controller on a Dell R430 Server in three step-wise manner from 2015 to 2021 versions.
How to update iDRAC with Lifecycle Controller – Technig

7. Check the Job Queue to see the results. If you find a failed result, try with a lower version.

The final result should be successful. Refresh the page and log in to IDRAC again.

iDRAC7 and iDRAC8 RED007 error when applying latest iDRAC firmware from Out of Band interface

Affected Product:

iDRAC7, IDRAC8 Lifecycle Controllers, PowerEdge FC430, PowerEdge FC630, PowerEdge FC830, PowerEdge FM120x4 (for PE FX2/FX2s), PowerEdge M630, PowerEdge M630 (for PE VRTX), PowerEdge M830, PowerEdge M830 (for PE VRTX), PowerEdge R220, PowerEdge R230, PowerEdge R320, PowerEdge R330, PowerEdge R420, PowerEdge R420xr, PowerEdge R430, PowerEdge R520, PowerEdge R530, PowerEdge R530xd, PowerEdge R620, PowerEdge R720, PowerEdge R720xd, PowerEdge R730, PowerEdge R730xd, PowerEdge R820, PowerEdge R830, PowerEdge R920, PowerEdge R930, PowerEdge T130, PowerEdge T320, PowerEdge T330, PowerEdge T420, PowerEdge T430, PowerEdge T620, PowerEdge T630.

Dell PowerEdgeHow toHow to FixIDRAC ConfigurationIDRAC IssuesServer Configuration
Comments (4)
Add Comment
  • Sorour

    I need the password of iso server 2016
    Please

    • Shais

      The Windows Server iso file is not password protected. You have to make sure you downloaded from a trusted source.

  • dan o

    Dell has token down the older updates preventing step updating.

  • M Zia

    its really great and informative article